Changed my password, I already used a different one for other sites fortunately if this were the case.

Always a good practice.

I also suggest using a password manager to keep track of all of your passwords.

Firefox and Chrome have built in password managers, but there are other ones that will work across various devices and apps so you don't have to keep storing passwords in multiple places. most have good free versions with paid versions for extra features, like automatic password changing, etc.

https://www.lastpass.com
https://bitwarden.com/
https://1password.com

Most work by having a Master password to access the rest of your passwords. Just make sure your master password is very secure and not one you use anywhere else. Best practices is to use a password phrase. Just make up some nonsense phrase that you can remember and type easy but make it at least 12 characters long. Something like "I eat cardboard" or "Unicorns fart chocolate" "My dog is a moron"



Rats! Now I have to change all of my passwords again!

Oh and just for everyone's peace of mind: We don't store any personal information about anyone. All a data breach would give anyone would be your tweb username/encrypted password and email address.

Also on the Vbulletin forum, Vbulletin was asked about the encryption on the password database and they replied.

"Salted* and MD5 hashed; it is next to impossible to retrieve and view a password even if the database is compromised."

So I am still not convinced we have had an actual breach. This thread is just to be safe.

*In cryptography, a salt is random data that is used as an additional input to a one-way function that hashes data, a password or passphrase. Salts are used to safeguard passwords in storage. ... Salting is one such protection. A new salt is randomly generated for each password. https://en.wikipedia.org/wiki/Salt_(cryptography)